The one-more-RSA-inversion problems and the security of Chaum's blind signature scheme

被引：236

作者：

Bellare, M

Namprempre, C

Pointcheval, D

Semanko, M

机构：

[1] Univ Calif San Diego, Dept Comp Sci & Engn, La Jolla, CA 92093 USA

[2] Ecole Normale Super, CNRS, Dept Informat, F-75230 Paris 05, France

[3] Entropia Inc, San Diego, CA 92121 USA

来源：

JOURNAL OF CRYPTOLOGY | 2003年 / 16卷 / 03期

关键词：

blind digital signature schemes; digital cash; RSA;

D O I：

10.1007/s00145-002-0120-1

中图分类号：

TP301 [理论、方法];

学科分类号：

081202 ;

摘要：

We introduce a new class of computational problems which we call the "one-more-RSA-inversion" problems. Our main result is that two problems in this class, which we call the chosen-target and known-target inversion problems, respectively, have polynomially equivalent computational complexity. We show how this leads to a proof of security for Chaum's RSA-based blind signature scheme in the random oracle model based on the assumed hardness of either of these problems. We define and prove analogous results for "one-more-discrete-logarithm" problems. Since the appearence of the preliminary version of this paper, the new problems we have introduced have found other uses as well.

引用

页码：185 / 215

页数：31

共 30 条

[1]

Abbott J, 1999, ISSAC 99: PROCEEDINGS OF THE 1999 INTERNATIONAL SYMPOSIUM ON SYMBOLIC AND ALGEBRAIC COMPUTATION, P197, DOI 10.1145/309831.309934

[2]

ADKINS W, 1992, GRADUATE TEXTS MATH, V136, P204

[3]

[Anonymous], LNCS

[4]

Bellare M, 1996, LECT NOTES COMPUT SC, V1070, P399

[5]

BELLARE M, 2002, LECT NOTES COMPUTER, V2339

[6]

BELLARE M, 2001, 2001060 CRYPT EPR

[7]

BELLARE M, 2002, LECT NOTES COMPUTER

[8]

BELLARE M, 2002, UNPUB TRANSITIVE SIG

[9]

Bellare Mihir, 1993, CCS

[10]

Boneh D, 1998, LECT NOTES COMPUT SC, V1403, P59, DOI 10.1007/BFb0054117

← 1 2 3 →